CVE-2022-46604 PoC — Tecrail Responsive FileManager 代码问题漏洞

Source

https://github.com/galoget/ResponsiveFileManager-CVE-2022-46604

Associated Vulnerability

Title:Tecrail Responsive FileManager 代码问题漏洞 (CVE-2022-46604)
Description:Tecrail Responsive FileManager是意大利Tecrail公司的一款使用PHP语言编写的开源文件管理器。该产品支持视频、图像或其他文件的上传和管理。 Tecrail Responsive FileManager v9.9.5及之前版本存在安全漏洞，该漏洞源于允许攻击者绕过文件扩展名检查机制并上传精心制作的PHP文件，从而导致任意代码执行。

Description

Responsive FileManager v.9.9.5 vulnerable to CVE-2022-46604.

Readme

# ResponsiveFileManager-CVE-2022-46604
Responsive FileManager v.9.9.5 vulnerable to CVE-2022-46604 (File Creation Extension Bypass which leads to RCE).

The current exploit is made in Python 3 and exploits the vulnerability to upload a webshell which allows the remote execution of commands in the vulnerable host.

## References
- Exploit Database (Exploit-DB): https://www.exploit-db.com/exploits/51251
- Packet Storm Security: https://packetstormsecurity.com/files/171720/Responsive-FileManager-9.9.5-Remote-Shell-Upload.html

### Demo

![CVE-2022-46604 exploit PoC](CVE-2022-46604-exploit-PoC.png "CVE-2022-46604 exploit PoC")

File Snapshot


 [4.0K]  /data/pocs/00be967406c03d17192eb57705aac48bf20cc6ea
├── [233K]  CVE-2022-46604-exploit-PoC.png
├── [6.2K]  CVE-2022-46604-exploit.py
├── [ 742]  Dockerfile
├── [ 34K]  LICENSE
├── [ 631]  README.md
├── [  34]  requirements.txt
└── [1.6M]  responsive_filemanager_v9.9.5.zip

0 directories, 7 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!